Acceptable Use Policy Summary

Information technology resources (computers, network resources, telephones, etc.) at Southern Polytechnic State University are assets of the State of Georgia and are intended to be used by the students, faculty and staff of Southern Polytechnic State University to further the mission of the university.  Governing law for the State of Georgia is the Georgia Computer System Protection Act.

Expectations:

It is the expectation of the University that all users will comply with all aspects of this policy and refrain from improper use of information technology resources both during and after regular business hours.  Inappropriate usage includes (but is not limited to) actual or attempted use of information technology resources for:

Enforcement:

Enforcement will be the sole responsibility of Southern Polytechnic State University, it University Police and Information Technology Division and may include (but not limited to) university sanction, housing sanctions, loss of privileges to use campus information technology resources and full prosecution under the laws of the United States and the State of Georgia.  Information Technology reserves the right to temporarily suspend privileges of any user suspected of abuse pending investigation.
 

1. Overview
2. Definitions
2.1 Authorized Use
2.2 Authorized Users
3. Individual Privileges
3.1 Privacy
3.2 Freedom of Expression
3.3 Ownership of Intellectual Works
3.4 Freedom from Harassment, Display of Objectionable or Undesired Material
4. Individual Responsibilities
4.1 Common Courtesy and Respect for Rights of Others
4.1.1 Privacy of Information
4.1.2 Intellectual Property
4.1.3 Harassment
4.2 Responsible Use of Resources
4.3 Game Playing
4.4 Information Integrity
4.5 Use of Desktop Systems
4.6 Access to Facilities and Information
4.6.1 Sharing of Access
4.6.2 Permitting Unauthorized Access
4.6.3 Use of Privileged Access
4.6.4 Termination of Access
4.7 Attempts to Circumvent Security
4.7.1 Decoding Access Control Information
4.7.2 Denial of Service
4.7.3 Harmful Activities
4.7.4 Unauthorized Access
4.7.5 Unauthorized Monitoring
4.8 Academic Dishonesty
4.9 Use of Copyrighted Information and Materials
4.9.1 File Sharing
4.10 Use of Licensed Software
4.11 Political Campaigning - Commercial Advertising
4.12 Personal Business
5. Southern Polytechnic State University Privileges
5.1 Allocation of Resources
5.2 Control of Access to Information
5.3 Imposition of Sanctions
5.4 System Administration Access
5.5 Monitoring of Usage, Inspection of Files
5.6 Suspension of Individual Privileges
6. Southern Polytechnic State University Responsibilities
6.1 Security Procedures
6.1.1 Location of Information Technology Servers
6.1.2 Backup of IT Servers
6.1.3 Verification of Backups
6.1.4 Recovery of IT Servers
6.2 Anti-Harassment Procedures
6.3 Upholding of Copyrights and License Provisions
6.4 Individual Department Responsibilities
6.5 Public Information Services
7. Procedures and Sanctions
7.1 Investigative Contact
7.2 Responding to Security and Abuse Incidents
7.3 First and Minor Incident
7.4 Subsequent and/or major violations
7.5 Range of Disciplinary Sanctions
7.6 Suspension of Privileges by System Administrator
8. Acquiring Computer Accounts
8.1 Faculty and Staff Accounts
8.1.1 Addition of New Faculty and Staff Accounts
8.1.2 Deletion of Old Faculty and Staff Accounts
8.2 Student Accounts
8.2.1 Addition of New Student Accounts
8.2.2 Deletion of Old Student Accounts


Georgia Computer Systems Protection Act

I.  Overview
The Acceptable Computer System and Network Access Policy constitutes a campus-wide policy intended to allow for the proper use of all Southern Polytechnic computing, telecommunications and networking resources. These guidelines are intended to supplement, not replace, all existing laws, regulations, agreements, and contracts which currently apply to these services.

Users who meet the criteria detailed in section 2.2, are authorized by the University to utilize computing, telecommunications, or network resources. Appropriate use should always be legal, ethical, reflect community standards and show restraint in the consumption of SPSU resources. Additionally, appropriate usage should demonstrate the respect for intellectual property, ownership of data, system security mechanisms, and individual rights to privacy and freedom from intimidation, harassment and unwarranted annoyances. Appropriate use of computing and network resources includes instruction, independent study, authorized research, independent research, communication, and official work of the offices, units, recognized student and campus organizations, and agencies of the University.

All members of the community should respect each others' right to privacy, freedom of speech, and freedom from harassment. All members of the community are responsible to each other to respect and value the rights of all, to recognize the diversity of the community, to behave ethically, and in all cases to obey the law.

Members of the community are responsible for recognizing and honoring the intellectuall property rights of others. This includes following the legal guidelines for copyright and fair use.

Penalties for non-compliance with SPSU, State and/or Federal regulations vary by offense, but may range from temporary or permanent revocation of access privileges to full prosecution under the law.  Severity of penalty will be determined by the Division of Information Technology, the Dean of Students, and/or SPSU University Police working with federal and state authorities.
 
 

Division of Information Technology

2. Definitions

University:  Herein referenced as "The University" or "SPSU" refers to Southern Polytechnic State University, used synonymously.

Computer System:  Includes computers, network systems and devices, severs, telephony and any other devices that are administered by Southern Polytechnic State University (SPSU) and for which the University is responsible.

Electronic Communications: Use SPSU's systems in the communication of, posting, generating or sharing of information or material by way of electronic mail, bulletin boards, or other electronic tools.

Network Systems:  Includes, video, voice and data networks, switches, routers, hubs, and storage devices.

Members of the Campus Community: "Members of the Campus Community", "Members of the SPSU Community" include users and/or benefactors whose access to SPSU resources furthers the mission of the University.

Systems or Network Personnel:  Those tasked by the Chief Information Officer with implementing, maintaining, and securing SPSU's systems.

2.1 Authorized Use
Authorized use of Southern Polytechnic State University-owned or operated computing and network resources is use consistent with the education, research and service mission of the University, and consistent with this policy.

2.2 Authorized Users
Authorized users are:

  1. current faculty and staff of the University;
  2. students who are currently eligible to register, students who are currently enrolled in the University, or a student who has been enrolled in one of the past three semesters;
  3. others, including vendors and guests, whose access furthers the mission of the University and whose usage does not interfere with the access of resources by others, result in the loss of or suspension of data, or business-critical functions, violate intellectual property, copyright infringement, and/or any other local, state or federal laws.
A user of computing, telecommunications or network resources must be authorized by the campus unit that is responsible for that resources operation.

3. Individual Privileges
The following individual privileges, all of which are currently existent at Southern Polytechnic State University, empower all individuals to be productive members of the campus community. It must be understood that privileges are conditioned upon acceptance of the accompanying responsibilities.

3.1 Privacy
To the greatest extent possible in a public setting, SPSU desires to preserve individuals' privacy. Electronic and other technological methods must not be used to infringe upon privacy. However, users must recognize that Southern Polytechnic State University computer systems and networks are public and subject to the Georgia Open Records Act. E-mail, messaging, and file storage/transfer services provided through state-owned facilities cannot be considered private. Users, thus, utilize such systems at their own risk.

3.2 Freedom of Expression
The constitutional right to freedom of speech applies to all members of the campus no matter the medium used.   A user's freedom of expression is limited, only as allowed by law in order to protect the rights and safety of all members of the University. Users are prohibited from making any expression that presents a clear and present danger and/or the commission of any unlawful act on University premises.

3.3 Freedom from Harassment, Display of Objectionable or Undesirable Material
All members of the University have the right not to be harassed, intimidated or subjected to undue annoyances by others. These rights apply to all communications including electronic transmissions.  (Also see 4.1.3)

3.4 Ownership of Intellectual Works
People creating intellectual works using Southern Polytechnic State University computers or networks, including but not limited to software, should consult Determination of Rights and Equities in Intellectual Property (Board of Regents Policy manual, section 603.03, 2/2/94) and any subsequent revisions), and SPSU Intellectual Property P&P 603 which establishes guidelines governing intellectual property created at Southern Polytechnic State University by faculty, staff, and students. These guidelines address the rights of the University as well as those of the faculty, staff, and students.  Additional information may be obtained by visiting the United States Copyright Office Website.

For Intellectual property and copyright infringement see section(s) 4.1.2 - 4.9

4. Individual Responsibilities
Just as certain privileges are given to each member of the campus community, individuals will be held accountable for their actions as a condition of continued membership in the community. The interplay of privileges and responsibilities within each individual situation and across campus engenders the trust and intellectual freedom that form the heart of SPSU. This trust and freedom is grounded on each person developing the skills necessary to be an active and contributing member of the community. These skills include an awareness and knowledge about information and the technology used to process, store, and transmit it.

4.1 Common Courtesy and Respect for Rights of Others
Members of the campus community are responsible to each other in many ways, including to respect and value the rights of privacy for all, to recognize and respect the diversity of the population and opinion in the community, to behave ethically, and to comply with all legal restrictions regarding the use of information that is the property of others.

4.1.1 Privacy of Information
Files of personal information, including programs, no matter on what medium they are stored or transmitted, may be subject to the Georgia Open Records Act if stored on Southern Polytechnic State University's computers. That fact notwithstanding, no one should look at, copy, alter, or destroy anyone's personal files without explicit permission (unless authorized or required to do so by law or regulation). Simply being able to access a file or other information does not imply permission to do so.

Similarly, no one should connect to a host on the network without advance permission.  People and organizations link computers to the network for numerous different reasons, and many result in unwelcome connections and attempts to invade privacy or compromise network security.

4.1.2 Intellectual Property
Members of the campus community are responsible for recognizing (attributing) and honoring the intellectual property rights of others. The University has a legal duty to ensure that official University websites, e-mail and other official communications and expressions do not violate the intellectual property rights of others.  Most common intellectual property infractions involve copyright and trademark violations.

Upon notification of an intellectual property infringement, the University will, in good faith:

  1. Attempt to determine if any legal defense such as "fair use" exists to allow continued use of the material used by the University.
  2. If it appears the material in question has been infringed upon the University will comply with requests to remove the material.
Fair Use

What is "Fair Use" and who determines "Fair Use" ?

Fair Use is discusses in the US. Copyright Act.  The US Copyright Act defines specific criteria that must be considered and evaluated when determining if use of intellectual property and/or copyrighted material is indeed fair:

  1. Purpose and Character of Use - In short, why is its use necessary?
  2. The Nature of the Copyrighted Work - What type of work is it?
  3. Usage - How much of the work is copied?
  4. Effect on the potential value, demand or marketability of the work - Will use of the work impact the demand for or the value of the work?
The information above is not inclusive; users should therefore consult the US Copyright Act before using the intellectual property or copyrighted works of others.

4.1.3 Harassment
No member of the community may, under any circumstances, use Southern Polytechnic State University's computers or networks to libel, slander, or harass any other person.

The following shall constitute Computer Harassment:

  1. Using the computer to annoy, harass, terrify, intimidate, threaten, offend another person by  conveying or publicly displaying obscene language, pictures, or other materials;
  2. Using the computer to convey threats of bodily harm to the recipient or the recipient's immediate family;
  3. Intentionally using the computer to contact another person repeatedly with the intent to annoy, harass, or bother, whether or not any actual message is communicated, and/or where no purpose of legitimate communication exists, and where the recipient has expressed a desire for the communication to cease;
  4. Intentionally using the computer to contact another person repeatedly regarding a matter for which one does not have a legal right to communicate, once the recipient has provided reasonable notice that he or she desires such communication to cease (such as debt collection);
  5. Intentionally using the computer to disrupt or damage the academic, research, administrative, or related pursuits of another;
  6. Intentionally using the computer to invade the privacy, academic or  otherwise, of another or the  threatened invasion of the privacy of another.
4.2 Responsible Use of Resources
Members of the community are responsible for knowing what information resources (including networks) are available, remembering that the members of the community share them, and refraining from all acts that waste or prevent others from using these resources or from using them in whatever ways have been proscribed by the University and the laws of the State and Federal governments.

4.3 Game Playing
Limited recreational game playing, computer chatting, or role playing will be tolerated, on the University's computing resources when not needed for classes or by students for academic purposes. The privilege of occasionally using the University's computers for game playing, chatting, or role playing depends upon the civility of the users. Should there be impoliteness, rowdiness or other unpleasantness, this privilege may end immediately.

4.4 Information Integrity
It is one's own responsibility to be aware of the potential for and possible effects of manipulating information, especially in electronic form, to understand the changeable nature of electronically stored information, and to verify the integrity and completeness of information that they compile or use. Do not depend on information or communications to be correct when they appear contrary to expectations; verify it with the person who originated the message or data.

4.5 Use of Personally Managed Systems and Network Devices
System devices include desktops, pocket PC's, personal organizers, text paging devices or any other device capable of connecting to or utilizing the University network infrastructure and/or facilities to communicate.  Mangers of these systems are responsible to ensure the security and network integrity.  This includes, applying appropriate software patches, securing such systems against viruses and access control to the system itself.  Additional precautionary measures, including, but not limited to, password protection, should be taken to protect the University and its resources. Avoid storing passwords or other information that can be used to gain access to other campus computing resources.

4.6 Access to Facilities and Information

4.6.1 Sharing of Access
Computer accounts, passwords, and other types of authorization are assigned to individual users and must not be shared with others. Users are responsible for any use of their accounts.

4.6.2 Permitting Unauthorized Access
Users may not run or otherwise configure software or hardware to intentionally allow access by unauthorized users. (See section 2.2)

The following software applications are prohibited from installation on any University resource:

  1. Audio Galaxy
  2. Kazaa
  3. IMesh
  4. Morpheus
  5. Gnutella
  6. Bearshare
  7. Limewire
  8. Napster
  9. WinMX
  10. Edonky2000
  11. Direct Connect
  12. Other commercially available software and/or freeware which allows files sharing by unauthorized users.
4.6.3 Use of Privileged Access
Special access to information or other special computing privileges are to be used in performance of official duties only. Information obtained through special privileges is to be treated as private.

4.6.4 Termination of Access
When a user is no longer a member of the campus community such as a student no longer eligible to register or upon termination of employment, or if they are assigned a new position and/or responsibilities within the University, their access authorization must be reviewed. A user must not use facilities, accounts, access codes, privileges, or information for which (s)he is no longer authorized under their new circumstances.

4.7 Attempts to Circumvent Security
Users are prohibited from attempting to circumvent or subvert any system's security measures. This section does not prohibit use of security tools by system administration personnel.

4.7.1 Decoding Access Control Information
Users are prohibited from using any computer program or device to intercept or decode passwords or similar access control information.

4.7.2 Denial of Service
Deliberate attempts to degrade the performance of a computer system or network or to deprive authorized personnel of resources or access to any University computer system or network are prohibited.

4.7.3 Harmful Activities
The following harmful activities are prohibited: creating or propagating viruses; disrupting services; damaging files; intentional destruction of or damage to equipment, software, or data belonging to Southern Polytechnic State University or other users; and the like.

4.7.4 Unauthorized Access
The following list, not limited to, includes activities expressly prohibited by the University.  Users may not:

4.7.5 Unauthorized Monitoring
Members of the community may not use computing resources for unauthorized monitoring of electronic communications.

4.8 Academic Dishonesty
Members of the community should always use computing resources in accordance with the high ethical standards of the University community. Academic dishonesty (plagiarism, cheating) is a violation of those standards.

4.9 Use of Copyrighted Information and Materials
Members of the community are prohibited from using, inspecting, copying, and storing copyrighted computer programs and other material, in violation of any governing University policies, local, state and/or federal copyright laws.

Additional Information on the TEACH Act, signed into law November 2, 2002 , Subtitle C-Educational Technology; Education, and Copyright Harmonization Act of 2002. Use Copyright Exemption, provides exclusions and guidelines for acceptable use of copyrighted works in education.

The Digital Millennium Copyright Act of 1998 is a federal law that is designed to protect owners of copyrighted works from online or electronic theft - unauthorized reproduction and distribution of copyrighted works. The DMCA covers movies, text, music- in short anything that is copyright protected.

Compliance with all copyright laws is expected of all students, faculty, staff and guest users of the University's resources.

Violators may be subject to temporary or permanent loss of network and system access privileges, referred to the appropriate disciplinary procedure(s), as well as be referred for criminal or civil prosecution.

Additional information may be obtained by visiting the United States Copyright Office website: http://www.loc.gov/copyright/

Infringement
The owner of copyrighted works, or persons acting on behalf of the owner, must provide the University's designated representative written notice that information residing on the University's system or network, or information obtained by utilizing the University's systems and resources in an infringement of applicable copyright laws.  All notices should meet the requirements of 17 U.S.C. 512(c)(3).

The University will promptly remove or disable access to the allegedly infringed upon material.  Additionally, the University will notify the user or that the infringed upon material has been removed and/or access disabled.

4.9.1  File Sharing
SPSU values the open communications and sharing of expressions and ideas.  However, ideas, copyrighted works, intellectual property of others must be used in compliance with "fair use" copyright and intellectual property laws.  The University cannot support the unlawful trading, sharing, and reproduction of copyrighted works.

4.10 Use of Licensed Software
No software may be installed, copied, or used on University resources except as permitted by the owner of the software. Software subject to licensing must be properly licensed and all license provisions (installation, use, copying, number of simultaneous users, term of license, etc.) must be strictly adhered to.

4.11 Political Campaigning - Commercial Advertising
Board of Regents policy (section 914.01) states "The use of System materials, supplies, equipment, machinery, or vehicles in political campaigns is forbidden." The use of University computers and networks shall conform to these policies.

4.12 Personal Business
Computing facilities, services, and networks may not be used in connection with compensated outside work nor for the benefit of organizations not related to Southern Polytechnic State University, except: in connection with traditional faculty pursuits such as teaching, research and services.

This and any other incidental use (such as electronic communications or storing data on single-user machines) must not interfere with other users' access to resources (computer cycles, network bandwidth, disk space, printers, etc.) and must not be excessive. State law restricts the use of State facilities for personal gain or benefit.

5. Southern Polytechnic State University Privileges
Society depends on institutions like Southern Polytechnic State University to educate citizens and advance the development of knowledge. However, in order to survive, SPSU must attract and responsibly manage financial and human resources. Therefore, the University has been granted by the State, and the various other institutions with which it deals, certain privileges regarding the information necessary to accomplish its goals and to the equipment and physical assets used in its mission.

5.1 Allocation of Resources
Southern Polytechnic State University may allocate resources in differential ways in order to achieve its overall mission.

5.2 Control of Access to Information
Southern Polytechnic State University may control access to its information and the devices on which it is stored, manipulated, and transmitted, in accordance with the laws of Georgia and the United States and the policies of the University and the Board of Regents.

5.3 Imposition of Sanctions
Southern Polytechnic State University may impose sanctions and punishments on anyone who violates the policies of the University regarding computer and network usage.

5.4 System Administrator Access
A System Administrator (i.e., the person responsible for the technical operations of a particular machine) may access others files for the maintenance of networks and computer and storage systems, such as to create backup copies of media. However, in all cases, all individuals' privileges and rights of privacy are to be preserved to the greatest extent possible.

5.5 Monitoring of Usage, Inspection of Files
Southern Polytechnic State University may routinely monitor and log usage data, such as network session connection times and end-points, CPU and disk utilization for each user, security audit trails, network loading, etc.

In all cases all individuals' privileges and right of privacy are to be preserved to the greatest extent possible.

5.6 Suspension of Individual Privileges
Southern Polytechnic State University may suspend computer, systems, and network privileges of an individual for reasons relating to his/her physical or emotional safety and well being, or for reasons relating to the safety and well-being of other members of the campus community, or University property. Access will be promptly restored when safety and well-being can be reasonably assured, unless access is to remain suspended as a result of formal disciplinary action imposed by the Office of the Vice President for Student & Enrollment Services (for students) or the employee's department in consultation with the Personnel Office (for employees). (See Section 7.6).

6. Southern Polytechnic State University Responsibilities

6.1 Security Procedures
Southern Polytechnic State University has the responsibility to develop, implement, maintain, and enforce appropriate security procedures to ensure the integrity of individual and institutional information, however stored, and to impose appropriate penalties when privacy is purposefully abridged.

6.1.1 Access to the Data Center
As of the end of Fiscal Year 2001, all IT servers will be located in the data center. The new data center has no outside access and internal access is limited to key IT personnel. The data center was designed with environmental and security protection in mind. Only authorized personnel are allowed access to the data center.

6.1.2 Backup of IT Servers
Server backup schedules includes differential back-ups at intervals deemed appropriate by Network Infastructure Support Personnel based on the criticality and volatility of the data. The minimum frequency is weekly with critical servers being backed-up more frequently.

6.1.3 Verification of Backups
On a regular basis, Network Infastructure personnel log into the back-up server and query all nodes to ensure that the back-up has taken place in the scheduled windows.

6.1.4 Recovery of IT Servers
Backups are kept for each of our critical servers. These backups provide IT with the ability to completely restore a server. Based upon testing and past performance, lost files/directories can be normally restored and a complete system can normally be restored in 4-6 hours. It is the intent of IT to store back-ups in an off-site vault. This is currently not a service currently possible with existing back-up software, but IT is in the process of implementing new software which will allow for off-site storage of tapes.

6.2 Anti-Harassment Procedures
Southern Polytechnic State University has the responsibility to develop, implement, maintain, and enforce appropriate procedures to discourage harassment by use of its computers or networks and to impose appropriate penalties when such harassment takes place.

6.3 Upholding of Copyrights and License Provisions
See section 4.9. Southern Polytechnic State University has the responsibility to uphold all copyrights, laws governing access and use of information, and rules of organizations supplying information resources to members of the community (e.g., acceptable use policies for use of Internet).

6.4 Individual Department Responsibilities
Each department has the responsibility of:

6.5 Public Information Services
Departments and individuals may, with the permission of the appropriate department head, configure computing systems to provide information retrieval services to the public at large. However, in so doing, particular attention must be paid to the following sections of this policy: 2.1 (authorized use [must be consistent with University mission]), 3.3 (ownership of intellectual works), 4.2 (responsible use of resources), 4.9 (use of copyrighted information and materials), 4.10 (use of licensed software), and 6.4 (individual department responsibilities).

Usage of public services must not cause computer or network loading that impairs other services.

7. Procedures and Sanctions

7.1 Investigative Contact
If a user is contacted by a representative from an external organization (District Attorney's Office, FBI, GBI, etc.) who is conducting an investigation of an alleged violation involving Southern Polytechnic State University computing and networking resources, the Chief Information Officer (CIO) of the Division of Information Technology and the University Police must be informed immediately.

7.2 Responding to Security and Abuse Incidents
All users and departments have the responsibility to report any discovered unauthorized access attempts or other improper usage of Southern Polytechnic State University computers, networks, or other information processing equipment. If anyone observes, or receives a report of (other than as in 7.1 above), a security or abuse problem with any University computer or network facilities, including violations of this policy, they should:

7.3 First and Minor Incident
If a user appears to have violated this policy, and (1) the violation is deemed minor by the Division of Information Technology, (2) and the violation does not violate applicable local, state, and/or federal laws and (3) the person has not been implicated in prior incidents, then the incident may be dealt with at the Division of Information Technology level. The alleged offender will be furnished a copy of the University Computer and Network Usage Policy (this document), and will sign a form agreeing to conform to the policy.

7.4 Subsequent and/or Major Violations
Reports of subsequent or major violations will be forwarded to the University Police and/or Vice President of Student & Enrollment Services (for students) and/or the alleged violator's department head (for employees) for the determination of sanctions to be imposed. Departments should consult the Division of Information Technology and Personnel Office regarding appropriate action.

7.5 Range of Disciplinary Sanctions
Persons in violation of this policy are subject to the full range of sanctions, including the loss of computer or network access privileges, disciplinary action, dismissal from the University, and legal action.

Some violations may constitute criminal offenses, as outlined in the Georgia Computer Systems Protection Act and other local, state, and federal laws; the University will carry out its responsibility to report such violations to the appropriate authorities.

7.6 Suspension of Privileges by System Administrator
The University's System Administrator may suspend a user's access privileges for as long as necessary in order to protect the University's computing resources. As soon as practicable following the suspension, the System Administrator must take the following actions:

  1. The user must be provided with notice of the suspension and the reasoning.
  2. The user must be given an opportunity to meet with the System Administrator to discuss the suspension, at the request of the user.
  3. Following the meeting, the user must be notified the (s)he may appeal to the System Administrator's immediate supervisor if the user is dissatisfied with the outcome of the meeting.
If the user remains dissatisfied after meeting with the System Administrator's supervisor, the user will be notified of their right to appeal to the Vice President of Student Enrollment Services (students) or their department head (employees).

The user may exercise additional rights of appeal of outlined in existing University policies and procedures - Student Rights and Responsibilities/Student Life Regulations for Students, P&P 880.0 Grievance Procedure for Classified Personnel, and P& P 870.0 Faculty Grievances.

8. Acquiring Computer Accounts
Computer accounts utilizing the University's computing resources are available to all authorized users as outlined in section 2.2.  The policy for account creation is: "One User, One Social Security Number, One Account".  In other words, separate "utility" or "convenience" accounts will not be created and aliases/lists, filters and folder sharing shall be the substitute.  The only acception to this policy is for officially sanctioned and recognized SPSU student organizations.

8.1 Faculty and Staff Accounts
As of February 1, 1997, all faculty and staff requesting a new computer account will receive an account on the academic computer for e-mail purposes. Faculty and administrative staff members which require access to the registration system will receive an account on the administrative computer system as well. New Faculty/Staff accounts are created automatically by the Human Resources department upon completion of the budget/EIF process.

Upon creation, employee accounts automatically receive access to the following resources:

8.1.1 Additional Access

Once the employee's account has been created, additional access to special/secure services can be requested through the Division of Information Technology via the online Protected Data Access Form.

This form is required for access to the following systems and services:

8.1.2 Deletion of Old Faculty and Staff Accounts
The Human Resources Department shall notify DoIT upon the termination of any employee.  Once notified, accounts will be immediately removed. Upon the request of the user's department supervisor, IT will disable log-in privileges yet allow e-mail forwarding for a period of one month.

8.2 Student Accounts
Students meeting the authorized user criteria of section 2.2 are eligible for accounts on academic computers only. Student accounts are generated after the Registrar’s Office adds a student to the student information system at the start of the first semester of enrollment. New students can activate their network ID via the web at: http://accounts.spsu.edu/ (you must know your Student ID number and PIN to activate your account)

Upon creation, student accounts automatically receive access to the following resources:

8.2.1 Additional Access
Once the student's account has been created, additional access to special/secure services can be requested by a faculty/staff member through the Division of Information Technology via the online Protected Data Access Form.

8.2.2 Deletion of Old Student Accounts
Once a student no longer meets the eligibility requirements of section 2.2, their accounts will automatically be removed.